When considering software upgrades, customers are advised to consult the Cisco Security Advisories, Responses, and Alerts archive at http://www.cisco.com/go/psirt and review subsequent advisories to determine exposure and a complete upgrade solution.In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release.
If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.Cisco IOS SoftwareCisco provides a tool to help customers determine their exposure to vulnerabilities in Cisco IOS Software. The Cisco IOS Software Checker allows customers to perform the following tasks:
Initiate a search by selecting releases from the drop-down menu or uploading a file from a local system
Enter show version command output for the tool to parse
Create a customized search by including all previously published Cisco Security Advisories, a specific publication, or all advisories in the most recent bundled publication
The tool identifies any Cisco Security Advisories that impact a queried software release and the earliest release that corrects all vulnerabilities in each Cisco Security Advisory (“First Fixed”).
If applicable, the tool also returns the earliest possible release that corrects all vulnerabilities in all displayed advisories (“Combined First Fixed”). Please visit the Cisco IOS Software Checker or enter a Cisco IOS Software release in the following field to determine whether the release is affected by any published Cisco IOS Software advisory.
(Example entry: 15.1(4)M2)

Cisco IOS XE Software
Cisco IOS XE Software Release
First Fixed Release
First Fixed Release for All Advisories in the March 2015 Cisco IOS Software Security Advisory Bundled Publication
2.5.x
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
2.6.x
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.1.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.1.xSG
Not vulnerable
Not vulnerable
3.2.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.2.xSE
Vulnerable; migrate to 3.7.1E or later.
Vulnerable; migrate to 3.7.1E or later.
3.2.xSG
Not vulnerable
Not vulnerable
3.2.xXO
Not vulnerable
Not vulnerable
3.2.xSQ
Not vulnerable
Not vulnerable
3.3.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.3.xSE
Vulnerable; migrate to 3.7.1E or later.
Vulnerable; migrate to 3.7.1E or later.
3.3.xSG
Vulnerable; migrate to 3.7.1E or later.
Vulnerable; migrate to 3.7.1E or later.
3.3.xXO
Vulnerable; migrate to 3.7.1E or later.
Vulnerable; migrate to 3.7.1E or later.
3.3.xSQ
Not vulnerable
Not vulnerable
3.4.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.4.xSG
Vulnerable; migrate to 3.7.1E or later.
Vulnerable; migrate to 3.7.1E or later.
3.4.xSQ
Not vulnerable
Not vulnerable
3.5.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.5.xE
Vulnerable; migrate to 3.7.1E or later.
Vulnerable; migrate to 3.7.1E or later.
3.6.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.6.xE
Vulnerable; migrate to 3.7.1E or later.
Vulnerable; migrate to 3.7.1E or later.
3.7.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.7.xE
3.7.1E
3.7.1E
3.8.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.9.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.10.xS
3.10.5S
Vulnerable; migrate to 3.12.3S or later.
3.11.xS
Vulnerable; migrate to 3.12.3S or later.
Vulnerable; migrate to 3.12.3S or later.
3.12.xS
3.12.3S
Vulnerable; migrate to 3.12.3S or later.
3.13.xS
3.13.2S
3.13.2S
3.14.xS
Not vulnerable
Not vulnerable
3.15.xS
Not vulnerable
Not vulnerable
For a mapping of Cisco IOS XE Software releases to Cisco IOS Software releases, refer to Cisco IOS XE 2 Release Notes, Cisco IOS XE 3S Release Notes, and Cisco IOS XE 3SG Release Notes.
Cisco IOS XR Software
Cisco IOS XR Software is not affected by any of the vulnerabilities that are disclosed in the March 2015 Cisco IOS Software Security Advisory Bundled Publication.

Leave a Reply